Wireless local area network (wlan) gateway system

ABSTRACT

The invention of present provides for real-time authentication and billing gateway for WLAN traffic. Notably, the improved method for implementing a Wireless Local Area Network (WLAN) gateway system enables telecommunications network operators (and like entities) to rate and bill for services accessed by the wireless user. The logic of the invention supports and furthers the art in regard to advanced real-time rating/billing in addition to providing for a variety of replenishment mechanism for casual users via pre-paid vouchers and credit cards.

PRIORITY CLAIM

This application is a divisional of U.S. application Ser. No.12/964,928, filed Dec. 10, 2010; which is a continuation of U.S. patentapplication Ser. No. 10/603,099, filed Jun. 19, 2003 (now U.S. Pat. No.7,873,347), the contents of which are incorporated herein by reference.

CROSS-REFERENCE TO RELATED APPLICATIONS

Patent application Ser. No. 10/348,972 entitled “Method for implementingan Internet Protocol (IP) charging and rating middleware platform andgateway system”.

Patent application Ser. No. 10/307,335 entitled “Improved method forimplementing an Open Charging (OC) middleware platform and gatewaysystem”.

BACKGROUND ART

Wireless Local Area Network (WLAN) technology represents anever-evolving area of the art which enables high-speed wireless accessto the Internet or to a company Intranet: given that the range of suchWLAN Access Points is in the order of one hundred (100) metres, suchservice offerings have traditionally remained limited to discretelocales or ‘hot spots’ beyond the traditional workplace, as theubiquitous coffee shop, rail stations, airports and so forth.

The prior art teachings in this area remain quite limited in light ofthe state of the art (and evolution beyond such). Consider, U.S. PatentApplication 200201:76579 by Deshpande et al., entitled Location-basedservices using wireless hotspot technology, which provides for a methodof providing location-based services to a wireless device using ahotspot access point, comprising: establishing a connection between thewireless device and the hotspot access point; and providing informationassociated with the physical location of the hotspot access point to thewireless device. However, the application by Deshpande et al. restrictsthe billing mechanism to one of three modalities ‘business’, ‘public’ or‘personal’. The invention disclosed herein does not require a givenbillable service to be characterized or limited to one of the threemodalities as explicitly stipulated by Deshpande et al.'s application.Furthermore, Deshpande et al. does not teach or intimate a methodwhereby the relevant authentication, accounting and charging informationis communicated to a centralized authentication or billing server (suchas those hosted by macroscopic wireless carriers). In addition, the U.S.Patent Application 20020176579 by Deshpande et al. does not teach orsuggest a method whereby the location information affects the billingmechanism associated with the provision of services or capabilities to agiven end user as the case may be.

Further prior art also remain limited in its teachings. Consider U.S.Patent Application 20030051041 by Kalavade et al., according to itstitle provides for a method and apparatus for integrating billing andauthentication functions in local area and wide area wireless datanetworks. However, Kalavade et al. relies on a non-repudiation schemewhereby the subscriber is required to provide some form of personal data(e.g. their name, an address, a date of birth, and one or more digits ofa social security number). The invention disclosed herein does notrequire the use of personal data for the purpose of non-repudiation.Indeed, while the application by Kalavade et al. indicates thatintegration with a given ‘backoffice’ server (an HLR) is required, theapplication does not teach or suggest a method whereby theauthentication sequences can be mapped into an appropriate sequencesupported by contemporary networks which utilize the EAP, ANSI 41, GSMMAP, RADIUS, or DIAMETER protocols as the case may be. Furthermore, thepatent application does not teach or suggest a method wherebyalternative methods of payment can by supported (e.g. prepaid vouchersor credit cards).

And still further, International Application 03/032618 filed under thePatent Cooperation Treaty by Mellstrand et al., entitled Integration ofBilling between Cellular and WLAN Networks, provides a method forintegrating a cellular and wlan network for the purpose of billing via a‘Sign up Server’. However the application by Mellstrand et al., relieson the use of the GGSN in order to communicate with the HLR for theretrieval of user information and to authenticate the user. Theinvention disclosed herein does not require the use of the GGSN, nor isthe disclosed invention restricted to GSM/GPRS based macroscopicnetworks. Furthermore, Mellstrand et al.'s application does not teach orsuggest a method whereby wlan charges can be accrued against prepaidaccounts nor does it intimate a method whereby alternative methods ofpayment (e.g. prepaid vouchers or credit cards) can by supported for thepurpose billing WLAN access and usage.

REFERENCES CITED

U.S. Patent Application 20030051041 March 2003 Kalavade et al. 709/229

U.S. Patent Application 20020176579 November 2002 Deshpande et al.380/270

Foreign Patent Document(s)

03/032618 April 2003 PCT.

OTHER REFERENCES

GSM 03.40, Digital cellular telecommunications system (Phase 2+);

-   -   Technical realization of the Short Message Service (SMS)

GSM 09.02, Mobile Application Part (MAP) specification

3GPP2 N.S0023, Network Support for MDN-Based Message Centers

TIA TR 45.2, IS-841, TIAIEIA-41-D Based Network Enhancements for MDNBased Message Centers

GSM 03.90, Digital cellular telecommunications system (Phase 2+);

-   -   Unstructured Supplementary Service Data (USSD)—Stage 2

TIA TR 45.2, IS-841, TIAIEIA-41-D Based Network Enhancements for MDNBased Message Centers

TIAIEIA ANSI-41 Cellular Radio telecommunications Intersystem OperationsDiameter Base Protocol-draft-ietf-aaa-diameter-17

RFC 2865 Remote Authentication Dial In User Service

RFC 2866 RADIUS Accounting

Technical Field

The present invention relates generally to wireless telecommunicationsnetwork implementations and gateway services, and, in particular, to animproved method for implementing a Wireless Local Area Network (WLAN)gateway system.

SUMMARY OF THE INVENTION

The invention of present provides for a real-time authentication andbilling gateway system for Wireless Local Area Network (WLAN) traffic.The improved method for implementing a Wireless Local Area Network(WLAN) gateway system intermediates and connects WLAN users to thewireless network in question by easily and openly integrating intoexisting telecommunications networks thereby capitalizing on theexisting value and art found in billing, messaging, and IN platforms ofpresent.

The improved method for implementing a Wireless Local Area Network(WLAN) gateway system disclosed herewith provides real timeauthentication, billing and rating for Wireless Local Area Network(WLAN) traffic and/or other such broadband data services. The inventionexists as part of a computer program product which resides within thetelecommunication carrier's core network. By interfacing with multipleAccess Controllers (ACs) over a Remote Access Dial In User Server{RADIUS), DIAMETER, or LDAP interface, WLAN users can gain networkaccess from telecommunications network carrier controlled hot spots andpartnered hot spot providers. By acting as a gateway between wirelessLAN hot spots and the telecommunications carrier's IN infrastructure theimproved method for implementing a Wireless Local Area Network (WLAN)gateway system has been articulated with the necessary logic and art tofacilitate the billing of existing wireless prepaid and postpaidaccounts. In further landmark embodiments, wireless users, within theappropriate coverage area, who do not have GSM: accounts are able toutilize the improved method for implementing a Wireless Local AreaNetwork (WLAN) gateway system as articulated and employed within atelecommunications carrier's network, through the creation of temporaryaccounts via credit card, voucher or similar means,

In additional embodiments the improved method for implementing aWireless Local Area Network (WLAN) gateway system supports a variety ofaccount replenishment mechanisms for wireless users via pre-paidvouchers, credit-cards and other such means.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 illustrates a typical, non-limiting embodiment of the systemlevel architecture employed in the disclosure of present.

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS

With reference to FIG. 1, although the invention of present exists aspart of a computer program product, for the purposes of simplicity andease of instruction, the improved method for implementing a WirelessLocal Area Network (WLAN) gateway system 100 can be functionally dividedbetween an AAA gateway 110 and a Session Controller 120 together withCharging 150 and Rating elements 140.

Continuing with reference to FIG. 1, in the preferred embodiment, theimproved method for implementing a Wireless Local Area Network (WLAN)gateway system 100 behaves as an AAA server to the Access Controller(not shown) via mediation of AAA requests typically executed through thedefacto standard RADIUS protocol.

Practitioners and other honourable members skilled in the art willrecognize that a variety of protocols (for example, DIAMETER and LDAP)and like logical instructions may be employed without diluting theintent and scope of the invention of present, and its inclusion herewithserves merely for the purpose of elucidation, simplicity and ease ofinstruction.

Still with reference to FIG. 1, the improved method for implementing aWireless Local Area Network (WLAN) gateway system connects to the SMSC40 using the Short Message Peer-to-Peer (SMPP) protocol and interface.(The SMPP interface 40A is required for WLAN non-repudiation forsubscribers). Following subscriber authentication an SMS message isdelivered to the subscriber's MSISDN over SMPP and through the SMSC 40.If a reply message is received from the subscriber, WLAN service will beoffered to the subscriber. If no reply is received within a configurableinterval, then WLAN service is not provided to the subscriber.Practitioners and other honourable members skilled in the art willrecognize that a variety of protocols and like logical instructions maybe employed apart from SMPP without diluting the intent and scope of theinvention of present, and its inclusion herewith serves merely for thepurpose of elucidation, simplicity and ease of instruction.

Where relevant, access to the computer program product which implementsthe improved method for implementing a Wireless Local Area Network(WLAN) gateway system 100 can be accessed through an UnstructuredSupplementary Service Data (USSD) Gateway 50A and related USSD accesstechnologies (which remains well defined in the art including GSM 09.02and GSM 03.90). In light of the state of the art, USSD is utilized as anoptional interface instead of SMPP for non-repudiation purposes.

Those skilled in the art will recognize that SMS or USSD messagingmechanisms may also be used as a mechanism to modify subscriberpreferences. The invention will also permit subscribers and networkoperators to make configuration changes via a (web-based) provisioninginterface.

The authentication mechanisms referred to utilize SMS non-repudiationand blacklist functionalities, which are meshed to provide the saidauthenticating mechanism for typical subscriber access in a provisionless mode. The dual mechanisms ensure a secure system to all fraudpotentialities (aside from the regrettable theft of the mobile unititself). Although in anticipating such eventualities, mobile unit theftcould be handled via real-time barring using the blacklistfunctionality. Nonetheless, SMS non-repudiation ensured that theintended subscriber was, in fact, the subscriber outlined with thehandset contract. Blacklist functionality provides for the barring ofservice for criteria such as other carrier subscribers, theft, fraud,and so on.

The improved method for implementing a Wireless Local Area Network(WLAN) gateway system, which mechanically exists as part of a computerprogram product, supports a variety of state of the art billingconstructs which are reliant on the type of access mechanism utilized bythe wireless user. The charging engine 150 provides superior flexibilityand allows the telecommunications carrier to offer a variety of billingmechanisms to their wireless user base.

In further elucidating the art pertaining to WLAN billing, the logic ofthe improved method for implementing a Wireless Local Area Network(WLAN) gateway system 100 has been refined and articulated to support anumber of scenarios/constructs; including, but not limited to, contractsubscribers, voucher management system, credit card services and prepaidsubscribers. The listed scenarios/constructs shall be outlined further,to facilitate ease of instruction, although practitioners skilled in thesubject matter will recognize that the billing scenarios remain onlybounded by the state of the art.

For contract subscribers, after said subscribers have authenticated withthe computer program product which implements the improved method forimplementing a Wireless Local Area Network (WLAN) gateway system 100,the former invention tracks charges based on the subscriber rate plan(predefined). Said billing details are laid out in a telecommunicationscarrier-defined or otherwise flexibly defined Charging Detail Record(CDR). The CDR is then sent out/collected by downstream billingmechanisms 61 in a format compatible with the requisite art of saidbilling technologies.

For voucher access, the wireless user in question enters their voucheras user id and thereafter, a temporary password. Through an optionalinterface 63A (in a varying embodiment), the improved method forimplementing a Wireless Local Area Network (WLAN) gateway system 100validates the voucher through a voucher management system 63 (whichremains well defined In the existing state of the art) and creates aWLAN session with said duration dependant upon the voucher amount andthe given rate plan. The WLAN Session Controller 120 stores theavailable balance and periodically decrements as such. In advancing theart and in promoting its use thereof, voucher sessions support mobility.That is to say, a wireless user may enter a hotel and purchase a voucherfor two (2) hours worth of use and subsequently only use one (1)therewith and log off. Said wireless user could then venture to a WLANactive airport, log back in with the voucher id and temporary passwordthey chose and utilize the remaining hour. In alternate embodiments, thevouchers can be articulated as to expire within a certain time frame ifnot used to their exhaustion.

Now, where a credit card is used as the means of payment 62 (62Arepresents the interface), the logic internal to the improved method forimplementing a Wireless Local Area Network (WLAN) gateway system 100initially validates the credit card purchase of a set amount of time,and returns a correlation id to the user. In deference to the need tomaintain credit card privacy and security, the invention does not storeany credit card parameters locally. Credit card users retain comparablebenefits and advantages as that of the former voucher user. (Said creditcard user can log back in using the returned correlation id andtemporary password they selected for their initial access).

Prepaid subscribers are billed via SCP account decrementing 64 (64Arepresents the interface) (which remains well defined in the art). Priorto authenticating, the logic and computer program product whichimplements the invention disclosed ensures that a sufficient balanceexists and continues decrementing the SCP account 64 (said periodicityand amount of the account decrement is dependent on the used rate planand billing interval settings) until the subscriber disconnects or thebalance expires. In the latter scenario, the invention kills thesession. To facilitate real-time SCP account debiting, the functionalityassociated with the improved method for implementing an Open Charging(OC) middleware platform and gateway system as detailed in patentapplication Ser. No. 10/307335 is required to perform the necessaryPrepaid charging functionality. Technicians skilled in the art willrecognize that the invention of present need not be limited to theaforementioned Open Charging (OC) middleware platform and gateway systemand other similar network implementations may be employed withoutdiluting the intent and scope as such.

The improved method for implementing a Wireless Local Area Network(WLAN) gateway system may also be co-articulated and implemented withthe method for implementing an Internet Protocol (IP) charging andrating middleware platform and gateway system as detailed in patentapplication Ser. No. 10/348972, to enhance the packet/data rating andclassification mechanisms inherent in the invention disclosed hereto.Technicians skilled in the art will recognize that the invention ofpresent need not be limited to the aforementioned method forimplementing an Internet Protocol (IP) charging and rating middlewareplatform and gateway system and other similar network implementationsmay be employed without diluting the intent and scope as such.

Optional manifestations of the invention may authenticate the subscriberusing the authentication sequences prescribed in ANSI-41, GSM TS 09.02,ETS1TS 100974, and 3GPP TS 29.002 Mobile Application Part (MAP)specifications as amended from time to time. Those skilled in the artwill recognize that International Mobile Subscriber Identity (IMSI) andalternative Mobile Station identifiers as well as subscriberAuthentication parametric attributes retrieved from the AccessController (not shown) may be used to initiate an authenticationsequence with the HLR 70 and/or Authentication Center (not shown). Yetan alternative manifestation may leverage an alternative messagingsequence (for example, Send_Routing_Info_for_SM or SMS_Request for GSMand ANSI-41 based networks respectively) to confirm whether a givensubscriber has an active subscription with a given network operator.Those skilled in the art will recognize that the messaging sequencemessages may be used to correlate the location of the subscriber asinferred in the response message with the location of the subscriber asprovided in the RADIUS based messages which emanate from. the AccessController (not shown).

What is claimed is:
 1. A wireless local area network (WLAN) gatewaysystem, comprising: an access gateway connected to an access controllerof a WLAN; said access gateway configured to receive authenticationinformation for a user associated with a mobile computing device, saidaccess gateway retrieving information from a database containing userinformation in order to authenticate the user; a charging engineconnected to said access gateway, said charging engine being configuredto generate charging details associated with access of said WLAN by saidmobile computing device; and at least one interface configured to accessa plurality of billing systems, at least one of the billing systemsbeing configured for pre-paid billing for user access of the WLAN and atleast another of the billing systems being configured for post-paidbilling for user access of the WLAN.
 2. The system of claim 1, whereinsaid access gateway is configured to emulate an authentication,authorization and accounting (AAA) server.
 3. The system of claim 1,further comprising: a rating element connected to said access gateway,said rating element configured to determine a rate of charge for packetscarried between said mobile computing device and said WLAN, said rate ofcharge based on a classification assigned to each of said packets, saidcharging details being based on said rate of charge; and a sessioncontroller connected to said access gateway.
 4. The system of claim 3,said session controller further configured to store an available voucherbalance, wherein said charging engine being configured to decrement saidavailable voucher balance.
 5. The system of claim 4, said chargingelement further configured, prior to said access gateway permitting saidmobile computing device to access said WLAN, to send a vouchervalidation instruction via a voucher interface.
 6. The system of claim3, said session controller further configured to generate a correlationidentifier and a temporary password prior to said access gatewaypermitting said mobile computing device to access said WLAN, whereinsaid charging details include decrementing a credit card balance.
 7. Thesystem of claim 1, wherein the billing systems include a billing systemof an existing telecommunications network.